Home page logo

nanog logo nanog mailing list archives

Re: Fed Bill Would Restrict Web Server Logs
From: Suresh Ramasubramanian <ops.lists () gmail com>
Date: Tue, 14 Feb 2006 20:29:29 +0530

On 2/14/06, Jon R. Kibler <Jon.Kibler () aset com> wrote:

"A bill just announced in Congress would require every Web site operator
to delete information about visitors, including e-mail addresses, if the
data is no longer required for a "legitimate" business purpose.

Original posting from Declan McCullagh's PoliTech mailing list. Thought

"When no longer required for business purposes"

Your syslog's logrotate function does that for you already, for all
reasonable purposes .. blows away logs that are say a week old.

Email addresses etc - I guess that's cookie data etc.  Or any other
data that you gather but dont state a purpose for .. if you gather
data saying you want to market to them, fine.  If you gather data like
that as part of a profile on a blog, fine.  No hassles that I can see

This kind of checks privacy violations / abuse that goes on when data
is collected without your knowledge, or used for purposes you didnt
intend it to be used for but didnt read fine print, or the people
collecting your data dont care about reselling it to others.

Suresh Ramasubramanian (ops.lists () gmail com)

  By Date           By Thread  

Current thread:
[ Nmap | Sec Tools | Mailing Lists | Site News | About/Contact | Advertising | Privacy ]